New
v2.1.13
π Security Fixes
Critical: This release fixes 2 moderate severity security vulnerabilities:
- CVE-2021-4235 (GHSA-r88r-gmrh-7j83) - YAML DoS vulnerability
- CVE-2019-11254 (GHSA-wxc4-f4m6-wwqv) - Resource consumption vulnerability
All Dependabot alerts have been resolved.
π¦ Changes
- Remove vulnerable
github.com/go-yaml/yamldependency - Update all dependencies to latest versions
- Upgrade Go runtime from 1.18 to 1.24.0
Recommended: All users should upgrade to this version for security reasons.
Full Changelog: https://github.com/ystyle/jvms/compare/v2.1.12...v2.1.13